Certificate
$ rpki-client -vvf rpki.afrinic.net/repository/afrinic/hala3Sz1h3QDC2qbk7QROG_jBkA.cer
File: hala3Sz1h3QDC2qbk7QROG_jBkA.cer (raw, json)
Hash identifier: xOoDZ9GRVSi0WyShKzfVWhfNHaq9dVEDcjeXBMQWa8o=
Subject key identifier: 85:A9:5A:DD:2C:F5:87:74:03:0B:6A:9B:93:B4:11:38:6F:E3:06:40
Authority key identifier: 2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
Certificate issuer: /CN=AFRINIC/serialNumber=2B57897A7CA964C3C8B7F7BDDAA7A4DA34A98F80
Certificate serial: 2FEB
Authority info access: rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
Manifest: rsync://rpki.afrinic.net/repository/member_repository/F36F5173/C6194FDC861D11EABACE5F28F8AEA228/hala3Sz1h3QDC2qbk7QROG_jBkA.mft
caRepository: rsync://rpki.afrinic.net/repository/member_repository/F36F5173/C6194FDC861D11EABACE5F28F8AEA228/
Notify URL: https://rrdp.afrinic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 02:53:04 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 37324
AS: 327821
IP: 196.49.9.0/24
IP: 196.223.0.0/24
IP: 2001:43f8:270::/47
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12267 (0x2feb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AFRINIC
Validity
Not Before: Jan 1 02:53:04 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=F36F5173AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c9:ea:84:ef:62:11:88:89:b1:4c:05:a1:4d:
ef:de:05:c9:8d:9f:a1:1e:ad:f7:14:17:01:0c:6b:
f8:5d:0b:fb:09:6b:b3:5e:33:d1:21:dd:1b:34:5a:
b0:54:45:4a:39:1e:63:ca:55:26:0e:6a:55:49:e4:
50:7b:70:10:93:9c:47:e1:60:4b:91:56:22:81:3c:
b4:6e:09:7d:f7:50:f3:08:2c:62:02:bb:28:0c:eb:
b7:76:4f:5f:af:f1:6b:46:42:de:fb:91:a2:04:5a:
5e:cd:ab:4f:f9:d2:01:84:f4:27:db:a2:93:09:9e:
04:ef:13:73:fc:a3:d9:e0:45:7c:95:d2:2c:aa:ee:
98:5a:84:b3:d7:3f:11:94:61:8b:be:72:4f:f9:fc:
f3:77:d1:4b:aa:48:1b:57:cc:8d:83:6e:c7:7b:65:
c0:11:d0:4a:92:87:64:a0:7a:a9:3f:f4:74:6b:c0:
f4:dc:04:6c:59:fd:f6:d6:a5:c7:b7:27:e6:db:3d:
2f:71:31:3d:56:97:60:53:9d:66:9b:16:d3:6d:eb:
7a:d3:ad:5d:38:fe:29:f1:05:64:bf:aa:14:0b:31:
5e:0f:58:48:21:47:e6:d0:3a:63:3e:c5:2e:f7:77:
e3:d7:2d:44:fb:3d:40:ca:53:2b:84:29:29:06:d6:
00:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:A9:5A:DD:2C:F5:87:74:03:0B:6A:9B:93:B4:11:38:6F:E3:06:40
X509v3 Authority Key Identifier:
keyid:2B:57:89:7A:7C:A9:64:C3:C8:B7:F7:BD:DA:A7:A4:DA:34:A9:8F:80
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F5173/C6194FDC861D11EABACE5F28F8AEA228/
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
RPKI Manifest - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F5173/C6194FDC861D11EABACE5F28F8AEA228/hala3Sz1h3QDC2qbk7QROG_jBkA.mft
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37324
327821
sbgp-ipAddrBlock: critical
IPv4:
196.49.9.0/24
196.223.0.0/24
IPv6:
2001:43f8:270::/47
Signature Algorithm: sha256WithRSAEncryption
71:b7:69:e1:e9:7a:06:96:a8:53:ee:bc:85:38:b5:87:74:4c:
3e:ef:46:1f:27:4c:80:34:57:33:2b:4f:20:14:87:23:db:64:
3c:a1:bf:c9:92:ed:4c:48:0c:35:49:a0:59:a1:83:ed:9d:0a:
03:33:77:f8:a6:f5:a1:0f:2f:de:9f:4f:93:d3:06:cd:72:09:
03:3d:59:14:ee:0c:28:14:c6:7b:08:a8:40:74:32:f9:a3:f8:
d5:22:a4:ed:44:b0:b9:f8:01:79:30:07:1c:2f:43:46:27:b8:
65:02:9f:af:70:7b:e4:61:93:f4:ff:a8:b7:47:90:85:a8:3e:
17:da:4b:88:54:5e:32:6c:27:59:29:dc:56:80:3b:8e:20:87:
07:bc:d8:d5:86:f5:9e:cd:0d:4e:68:b9:27:26:a6:c5:88:69:
20:48:29:1b:8c:3d:3a:5c:09:cf:c8:ad:5a:b3:16:5f:f5:1e:
b1:f5:86:53:c9:6e:34:45:15:ec:67:00:99:97:63:7c:34:7b:
7c:7c:95:4d:f2:f1:f3:f3:7e:43:4c:13:7d:2d:56:68:f9:8a:
ef:19:c7:bd:de:1e:13:8c:6d:49:32:2f:b9:90:00:e4:62:5a:
f9:dc:b3:a7:9b:7f:bb:4c:8c:5b:e2:9b:83:4e:31:9e:7a:6d:
b5:ef:bc:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 2 08:39:28 2025 by rpki-client